Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle application server 9.0.4.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3452
Unspecified vulnerability in Web Cache in Oracle Application Server 1.0 up to 9.0.4.2 has unknown impact and attack vectors, as identified by Oracle Vuln# AS13.
Oracle Application Server 9.0.4.2
Oracle Application Server 1.0
Oracle Application Server 1.0.2.2
Oracle Application Server 9.0.3.1
Oracle Application Server 9.0.4.1
Oracle Application Server 9.0
Oracle Application Server 9.0.2.3
NA
CVE-2005-3453
Multiple unspecified vulnerabilities in Web Cache in Oracle Application Server 1.0 up to 10.1.2.0 has unknown impact and attack vectors, as identified by Oracle Vuln# (1) AS12 and (2) AS14.
Oracle Application Server 1.0
Oracle Application Server 9.0.4.2
Oracle Application Server 1.0.2.2
Oracle Application Server 10.1.2.0
Oracle Application Server 9.0.3.1
Oracle Application Server 9.0.4.1
Oracle Application Server 9.0
Oracle Application Server 9.0.2.3
NA
CVE-2005-3460
Unspecified vulnerability in Oracle Agent in Oracle Enterprise Manager 9.0.4.1 up to 10.1.0.4 has unknown impact and attack vectors, as identified by Oracle Vuln# EM01.
Oracle Enterprise Manager Application Server Control 9.0.4.1
Oracle Enterprise Manager Application Server Control 9.0.4.2
Oracle 10g Enterprise Manager Database Control 10.1.0.3
Oracle 10g Enterprise Manager Database Control 10.1.0.4
NA
CVE-2005-3445
Multiple unspecified vulnerabilities in HTTP Server in Oracle Database Server 8i up to 10.1.0.4.2 and Application Server 1.0.2.2 up to 10.1.2.0 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB30 and AS03 or (2) DB31 and AS05.
Oracle Application Server 10.1.2.0.0
Oracle Application Server 10.1.2.0.1
Oracle Application Server 9.0.3.1
Oracle Application Server 9.0.4.1
Oracle Database Server 9.2.0.6
Oracle Database Server 9.2.0.7
Oracle Application Server 1.0.2.2
Oracle Application Server 9.0.4.2
Oracle Database Server 10.1.0.3
Oracle Application Server 10.1.2.0.2
Oracle Application Server 9.0.2.3
Oracle Database Server 8.1.7.4
Oracle Database Server 9.2.0.5
Oracle Database Server 10.1.0.4
Oracle Database Server 10.1.0.4.2
NA
CVE-2004-1364
Directory traversal vulnerability in extproc in Oracle 9i and 10g allows remote malicious users to access arbitrary libraries outside of the $ORACLE_HOME\bin directory.
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.2.1
Oracle Collaboration Suite Release 1
Oracle Application Server
Oracle Application Server 9.0.3
Oracle Application Server 9.0.3.1
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle E-business Suite 11.5.5
Oracle Enterprise Manager Database Control 10.1.2
Oracle Enterprise Manager Grid Control 10.1.0.2
Oracle Oracle8i Enterprise 8.0.6 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.1
Oracle Oracle8i Enterprise 8.1.7 .1.0
Oracle Oracle8i Enterprise 8.1.7 .4
Oracle Oracle8i Standard 8.1.7 .1
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Enterprise 9.2.0.1
Oracle Oracle9i Enterprise 9.2.0.2
Oracle Oracle9i Personal 9.0.1.5
Oracle Oracle9i Personal 9.2
Oracle Oracle9i Standard 9.0
2 EDB exploits
NA
CVE-2004-1362
The PL/SQL module for the Oracle HTTP Server in Oracle Application Server 10g, when using the WE8ISO8859P1 character set, does not perform character conversions properly, which allows remote malicious users to bypass access restrictions for certain procedures via an encoded URL w...
Oracle Application Server
Oracle Application Server 9.0.2
Oracle Application Server 9.0.3.1
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle E-business Suite 11.5.5
Oracle Enterprise Manager Grid Control 10.1.0.2
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Oracle8i Enterprise 8.0.6 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.1
Oracle Oracle8i Enterprise 8.1.7 .1.0
Oracle Oracle8i Enterprise 8.1.7 .4
Oracle Oracle8i Standard 8.0.6
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.2.2
Oracle Collaboration Suite Release 1
Oracle E-business Suite 11.5.1
Oracle E-business Suite 11.5.9
Oracle Enterprise Manager 9
Oracle Oracle10g Personal 9.0.4 .0
Oracle Oracle10g Standard 10.1 .0.2
Oracle Oracle8i Enterprise 8.1.5 .1.0
9.8
CVSSv3
CVE-2004-1363
Buffer overflow in extproc in Oracle 10g allows remote malicious users to execute arbitrary code via environment variables in the library name, which are expanded after the length check is performed.
Oracle Database Server 8.1.7.4
Oracle Application Server 9.0.2.1
Oracle Application Server
Oracle Database Server 9.0.1.5
Oracle Application Server 9.0.2.0.0
Oracle E-business Suite 11.5.5
Oracle Enterprise Manager 9.0.1
Oracle Database Server 9.0.4
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle Database Server 9.2.0.4
Oracle Application Server 9.0.2.3
Oracle E-business Suite 11.5.2
Oracle Application Server 9.0.4.1
Oracle E-business Suite 11.5.7
Oracle Database Server 10.1.0.2
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.4.0
Oracle E-business Suite 11.5.1
Oracle Enterprise Manager 9
Oracle Application Server 9.0.2.2
Oracle Application Server 9.0.2
NA
CVE-2004-1365
Extproc in Oracle 9i and 10g does not require authentication to load a library or execute a function, which allows local users to execute arbitrary commands as the Oracle user.
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.4.1
Oracle Collaboration Suite Release 1
Oracle E-business Suite 11.5.8
Oracle E-business Suite 11.5.9
Oracle Oracle10g Personal 10.1 .0.2
Oracle Oracle10g Personal 9.0.4 .0
Oracle Oracle8i Enterprise 8.1.5 .0.2
Oracle Oracle8i Enterprise 8.1.5 .1.0
Oracle Oracle8i Enterprise 8.1.6 .0.0
Oracle Oracle8i Standard 8.1.5
Oracle Oracle8i Standard 8.1.6
Oracle Oracle9i Enterprise 8.1.7
Oracle Oracle9i Enterprise 9.0.1
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 8.1.7
Oracle Oracle9i Personal 9.2.0.3
Oracle Oracle9i Personal 9.2.0.4
Oracle Oracle9i Standard 9.0.1.4
Oracle Oracle9i Standard 9.0.1.5
Oracle Application Server
NA
CVE-2004-1366
Oracle 10g Database Server stores the password for the SYSMAN account in cleartext in the world-readable emoms.properties file, which could allow local users to gain DBA privileges.
Oracle Application Server
Oracle Application Server 9.0.3
Oracle Application Server 9.0.3.1
Oracle E-business Suite 11.5.3
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.4.1
Oracle Collaboration Suite Release 1
Oracle E-business Suite 11.5.7
Oracle E-business Suite 11.5.8
Oracle E-business Suite 11.5.9
Oracle Oracle10g Personal 10.1 .0.2
Oracle Oracle10g Personal 9.0.4 .0
Oracle Oracle8i Enterprise 8.1.5 .0.2
Oracle Oracle8i Enterprise 8.1.5 .1.0
Oracle Oracle8i Standard 8.1.5
Oracle Oracle8i Standard 8.1.6
Oracle Oracle9i Enterprise 8.1.7
Oracle Oracle9i Enterprise 9.0.1
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.3
NA
CVE-2004-1367
Oracle 10g Database Server, when installed with a password that contains an exclamation point ("!") for the (1) DBSNMP or (2) SYSMAN user, generates an error that logs the password in the world-readable postDBCreation.log file, which could allow local users to obtain th...
Oracle Application Server 9.0.3
Oracle Application Server 9.0.3.1
Oracle E-business Suite 11.5.3
Oracle E-business Suite 11.5.4
Oracle Enterprise Manager 9.0.1
Oracle Enterprise Manager Database Control 10.1.2
Oracle Oracle8i Enterprise 8.0.5 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.0
Oracle Oracle8i Enterprise 8.1.7 .0.0
Oracle Oracle8i Enterprise 8.1.7 .1.0
Oracle Oracle8i Standard 8.1.7 .0.0
Oracle Oracle8i Standard 8.1.7 .1
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Enterprise 9.2.0
Oracle Oracle9i Enterprise 9.2.0.1
Oracle Oracle9i Personal 9.0.1.4
Oracle Oracle9i Personal 9.0.1.5
Oracle Application Server 9.0.2.2
Oracle Application Server 9.0.2.3
Oracle E-business Suite 11.5.1
Oracle E-business Suite 11.5.2
Oracle E-business Suite 11.5.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »